VDB
CVE-2024-22705
CVE-2024-22705
PUBLISHED
Es besteht eine Schwachstelle im Linux-Kernel. Dieser Fehler besteht im ksmbd-Modul aufgrund der fehlerhaften Behandlung der Beziehung zwischen Name-Daten und CreateContexts-Daten, die zu einem Out-of-Bound-Zugriff führt. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, um nicht spezifizierte Auswirkungen zu verursachen.
EPSS 0.02% · 5.1th percentile
Risk Scores
EPSS Score
0.02%
5.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Open Source | Open Source Linux Kernel <6.5-rc3 | |
| IBM | IBM Spectrum Protect Plus <10.1.16.2 | |
| Open Source | Open Source Linux Kernel <6.7-rc8 | |
| Oracle | Oracle Linux | |
| IGEL | IGEL OS <11.10.100 | |
| Open Source | Open Source Linux Kernel <6.5-rc1 | |
| SUSE | SUSE Linux | |
| EMC | EMC Avamar | |
| Ubuntu | Ubuntu Linux | |
| Red Hat | Red Hat Enterprise Linux | |
| RESF | RESF Rocky Linux | |
| IBM | IBM Spectrum Protect Plus 10.1 | |
| Open Source | Open Source Linux Kernel <6.6-rc7 | |
| Dell | Dell NetWorker virtual |
Timeline
- Jan 23, 2024 CVE Published
- Jan 31, 2024 EPSS Score
- Feb 28, 2024 EPSS Score
- Mar 26, 2024 EPSS Score
- Apr 23, 2024 EPSS Score
- May 20, 2024 EPSS Score
- Jun 17, 2024 EPSS Score
- Jul 14, 2024 EPSS Score
- Aug 11, 2024 EPSS Score
- Sep 7, 2024 EPSS Score
- Oct 4, 2024 Coalition ESS Score
- Oct 5, 2024 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0182.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0182 advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2259858 advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2259864 advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2260005 advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2259866 advisory
- https://ubuntu.com/security/notices/USN-6625-1 advisory
- https://ubuntu.com/security/notices/USN-6625-2 advisory
- https://lists.suse.com/pipermail/sle-security-updates/2024-February/017916.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2024-February/017917.html advisory
- https://ubuntu.com/security/notices/USN-6639-1 advisory
- https://lists.suse.com/pipermail/sle-security-updates/2024-February/017914.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2024-February/017918.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2024-February/017911.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2024-February/017919.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2024-February/017922.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2024-February/017934.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2024-February/017920.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2024-February/017923.html advisory
- https://lists.suse.com/pipermail/sle-security-updates/2024-February/017921.html advisory
…and 53 more